Техническая информация
- [<HKCU>\Software\Microsoft\Windows\CurrentVersion\Run] '{1D476073-5E7F-AD41-B897-60D4A63F43C6}' = '"%APPDATA%\Icuf\ewobsa.exe"'
- [<HKLM>\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] 'DisableNotifications' = '00000001'
- %APPDATA%\Icuf\ewobsa.exe
- <Служебный элемент>
- %TEMP%\tmpeed09b7b.bat
- <LS_APPDATA>\ogabw.ivi
- %APPDATA%\Icuf\ewobsa.exe
- '66.##7.77.134':15387
- '50.##.177.24':25517
- '15#.#12.138.69':23731
- '18#.#56.76.158':23986
- '85.#.95.205':15080
- '10#.#11.64.46':23323
- '99.##.152.226':27763
- '15#.#9.166.206':10117
- ClassName: 'Indicator' WindowName: ''